GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,189
Erlang
31
GitHub Actions
19
Go
1,985
Maven
5,000+
npm
3,701
NuGet
657
pip
3,326
Pub
11
RubyGems
882
Rust
836
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
639 advisories
Filter by severity
HCL BigFix Compliance is affected by unvalidated redirects and forwards. The HOST header can be...
Moderate
Unreviewed
CVE-2024-30140
was published
Nov 7, 2024
Bruno before 1.29.1 uses Electron shell.openExternal without validation (of http or https) for...
Moderate
Unreviewed
CVE-2024-48463
was published
Nov 4, 2024
An Open-Redirect vulnerability exists in PingAM where well-crafted requests may cause improper...
Moderate
Unreviewed
CVE-2024-25566
was published
Oct 29, 2024
PbootCMS 3.2.8 is vulnerable to URL Redirect.
Moderate
Unreviewed
CVE-2024-42930
was published
Oct 28, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in WP Sunshine Sunshine Photo...
Moderate
Unreviewed
CVE-2024-50463
was published
Oct 28, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in smp7, wp.Insider Simple...
Moderate
Unreviewed
CVE-2024-49682
was published
Oct 24, 2024
Public Knowledge Project pkp-lib 3.4.0-7 and earlier is vulnerable to Open redirect due to a lack...
Moderate
Unreviewed
CVE-2024-46326
was published
Oct 21, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in QuomodoSoft ElementsReady...
Moderate
Unreviewed
CVE-2024-47353
was published
Oct 11, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in EventPrime Events EventPrime...
Moderate
Unreviewed
CVE-2024-47648
was published
Oct 10, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in smp7, wp.Insider Simple...
Moderate
Unreviewed
CVE-2024-47354
was published
Oct 10, 2024
Windows Mobile Broadband Driver Remote Code Execution Vulnerability
Moderate
Unreviewed
CVE-2024-43536
was published
Oct 8, 2024
Windows Mobile Broadband Driver Remote Code Execution Vulnerability
Moderate
Unreviewed
CVE-2024-43543
was published
Oct 8, 2024
The web server of affected devices does not properly validate input that is used for a user...
Moderate
Unreviewed
CVE-2024-46886
was published
Oct 8, 2024
Sonarr – CWE-601: URL Redirection to Untrusted Site ('Open Redirect')
Moderate
Unreviewed
CVE-2024-45247
was published
Oct 6, 2024
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Payflex Payflex Payment...
Moderate
Unreviewed
CVE-2024-47646
was published
Oct 5, 2024
There is an unvalidated redirect vulnerability in Esri Portal for ArcGIS 10.8.1 - 11.2 that may...
Moderate
Unreviewed
CVE-2024-8148
was published
Oct 4, 2024
There is an unvalidated redirect vulnerability in Esri Portal for ArcGIS 11.0 and 10.9.1 that may...
Moderate
Unreviewed
CVE-2024-38037
was published
Oct 4, 2024
Under certain conditions, an attacker with the ability to redirect users to a malicious site via...
Moderate
Unreviewed
CVE-2024-8897
was published
Sep 17, 2024
An issue has been discovered in GitLab EE affecting all versions starting from 11.1 before 17.1.7...
Moderate
Unreviewed
CVE-2024-4283
was published
Sep 17, 2024
An issue has been discovered in GitLab EE affecting all versions starting from 12.9 before 17.1.7...
Moderate
Unreviewed
CVE-2024-4612
was published
Sep 12, 2024
WebITR from Uniong has an Open Redirect vulnerability, which allows unauthorized remote attackers...
Moderate
Unreviewed
CVE-2024-8586
was published
Sep 9, 2024
Loway - CWE-601: URL Redirection to Untrusted Site ('Open Redirect')
Moderate
Unreviewed
CVE-2024-42341
was published
Sep 8, 2024
A vulnerability was found in SourceCodester Clinics Patient Management System 2.0. It has been...
Moderate
Unreviewed
CVE-2024-8555
was published
Sep 7, 2024
A vulnerability, which was classified as problematic, was found in LinuxOSsk Shakal-NG up to 1.3...
Moderate
Unreviewed
CVE-2024-8412
was published
Sep 4, 2024
If a site had been granted the permission to open popup windows, it could cause Select elements...
Moderate
Unreviewed
CVE-2024-8386
was published
Sep 3, 2024
ProTip!
Advisories are also available from the
GraphQL API